Monthly Archives: August 2017

Sophos UTM 9.503-3 released

By | 24/08/2017

Sophos has released 9.503-3 today, you can download it here: Release notes: Up2Date 9.503003 package description: Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade Connected Wifi APs will perform firmware upgrade News: Maintenance Release Bugfixes: Fix [NUTM-7891]: [AWS] awslogsd.log is beeing flooded with logmessages Fix [NUTM-3196]: [Access… Read More »

Sophos UTM: TCP/UDP Ports used by Sophos RED

By | 09/08/2017

When you have the UTM behind another firewall and want to use the RED technology, you will have to NAT the following ports through the perimeter firewall: Note: it has been seen several times that some ISP’s block the traffic of UDP 3410 due to it’s triggering of Intrusion Prevention Systems, so be aware of… Read More »

Sophos UTM: How to bypass individual WAF rules

By | 09/08/2017

How to fix a false positive On Sophos UTM, mod_security can detect a far greater number of attacks, but also experiences a larger number of false positives. If your website is experiencing a lot of false positives, the best way to resolve them is to disable the specific rule IDs that are being detected. To… Read More »